Skip to content

[Java] WildcardTypeAccess.hasNoBound() returns wrong result for array bounds #4005

New issue
New issue
Open
#5407
Open
[Java] WildcardTypeAccess.hasNoBound() returns wrong result for array bounds#4005
#5407
Labels
questionFurther information is requested
@Marcono1234

Description

@Marcono1234
Marcono1234
opened on Aug 2, 2020 · edited by Marcono1234
Contributor

WildcardTypeAccess.hasNoBound() returns for wildcards bounded by an array type, that they have no bound.
Example query:

import java

from WildcardTypeAccess w
where
  exists (w.getUpperBound())
  and w.hasNoBound()
select w

Query console link

The issue appears to be that this predicate only checks for TypeAccess children, however ArrayTypeAccess is not a subclass of TypeAccess:

codeql/java/ql/src/semmle/code/java/Expr.qll

Lines 1589 to 1590 in 595ab44

/** Holds if this wildcard is not bounded by any type bounds. */
predicate hasNoBound() { not exists(TypeAccess t | t.getParent() = this) }

Maybe it would suffice checking that any child expression at index 0 or 1 exists (or would that also match annotations somehow)?

Activity

Marcono1234
added
questionFurther information is requested
on Aug 2, 2020
Marcono1234
linked a pull request that will close this issue on Mar 13, 2021
aeisenberg
mentioned this on Apr 12, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    questionFurther information is requested

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

      Development

      Participants

      @Marcono1234

      Issue actions
        [Java] WildcardTypeAccess.hasNoBound() returns wrong result for array bounds · Issue #4005 · github/codeql